RuhrSec 2019: Keynote "How to statically detect insecure uses of crypto...", Prof. Dr. Eric Bodden

Web Reference: Step inside the big tram model, and explore the city's transport history in a fun and visual way. Life in Oslo in the 1920s: technological innovation, jazz, dance, and women’s liberation – but also social inequality, poor housing conditions, and political strife. Oslo founded by Harald Hardrada (approximate date), [2][3] according to Snorre's saga. 1070 - Catholic diocese of Oslo established (approximate date). [4] 1080 (approximate) Old Aker Church erected (still existing) 1153 - Oslo Cathedral School established. [5] 1240 - Battle in Oslo 1240. 1920 in Oslo (3 C, 58 F) 1921 in Oslo (4 C, 105 F) 1922 in Oslo (6 C, 44 F) 1923 in Oslo (4 C, 30 F)

YouTube Excerpt: RuhrSec is the annual English speaking non-profit IT security conference with cutting-edge security talks by renowned experts. https://www.ruhrsec.de/ Talk. How to statically detect insecure uses of cryptography - at scale and with almost perfect precision Abstract. For decades, static code analysis has been notorious for being ineffective, due to high false positive rates. Yet, recent algorithmic breakthroughs have now given us the capability to build static analysis tools that not only rapidly analyze code bases with millions of lines of code, but also yield perfect precision in most practical cases. In this talk I will highlight the main ideas behind those breakthroughs and will demonstrate CogniCrypt, a recent practical security code analysis tool that makes us of this leap in technology. CogniCrypt (www.cognicrypt.de) is an official Eclipse project integrating with various IDEs and CI environments, which allows code developers to precisely pinpoint security-critical misuses of APIs, particularly crypto APIs. It currently supports the analysis of Java and Android projects, but a variant for C/C++ is in the works as well. I will conclude my talk with results from a large-scale study in which we applied CogniCrypt to security-sensitive Android apps and to all software artifacts on MavenCentral. Biography. Eric Bodden is one of the leading experts on secure software engineering, with a specialty in building highly precise tools for automated program analysis. He is Professor for Software Engineering at Paderborn University and director for Software Engineering and IT-Security at Fraunhofer IEM, where he is collaborating with the leading national and international software development companies. Further, he is a member of the directorate of the Collaborative Research Center CROSSING at TU Darmstadt. Prof. Bodden's research was awarded numerous times. At the German IT-Security Price, his group scored 1st place in 2016 and 2nd place in 2014. In 2014, the DFG awarded Bodden the Heinz Maier-Leibnitz-Preis, Germany's highest honour for young scientists. Prof. Bodden's research has received five ACM Distinguished Paper Awards in different communities. Twitter: https://twitter.com/profbodden

RuhrSec is the annual English speaking non-profit IT security conference with cutting-edge security talks by renowned experts....

Read Full Article 🔍

Curious about RuhrSec 2019: Keynote "How To Statically Detect Insecure Uses Of Crypto...", Prof. Dr. Eric Bodden's Color? Explore detailed estimates, salary breakdowns, and financial insights that reveal the true scope of their profile.

Source ID: FiIz4dx2DBY.

Category: color style guide